Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fairnorth.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 18, 2026
Valid Until
June 16, 2026
31 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:15:CB:64:4A:ED:79:3E:0A:05:BA:1E:78:8F:C9:94:6C:CF:30:BA:28:4D:C1:4D:BA:0E:4F:09:50:9C:25:47
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
testtrack.it
*.testtrack.it
99fashionbrands.com
*.99fashionbrands.com
*.bardas-mens-fashion.99fashionbrands.com
*.forato.99fashionbrands.com
assuan.org
*.assuan.org
*.remote.assuan.org
casino888666.pro
*.casino888666.pro
*.www.casino888666.pro
*.admin.cheox.net
cheox.net
*.cheox.net
*.ww25.cheox.net
*.www.cheox.net
chesterfieldcountyschools.org
*.chesterfieldcountyschools.org
*.stu.chesterfieldcountyschools.org
*.14.doramalive.io
doramalive.io
*.doramalive.io
*.bnbod.easyeverydaygardening.xyz
*.dwij7.easyeverydaygardening.xyz
easyeverydaygardening.xyz
*.easyeverydaygardening.xyz
*.kwid9.easyeverydaygardening.xyz
*.pwb3b.easyeverydaygardening.xyz
fairnorth.com
*.fairnorth.com
*.mx.fairnorth.com
*.sitemaps.fairnorth.com
marylandtattoo.com
*.marylandtattoo.com
*.mx.marylandtattoo.com
*.www.marylandtattoo.com
nftauditor.com
*.nftauditor.com
*.sitemaps.nftauditor.com
*.api.patane.it
*.bi.patane.it
*.dataset.patane.it
*.hostmaster.patane.it
patane.it
*.patane.it
*.remote.patane.it
*.reporting.patane.it
*.superset.patane.it
*.www.patane.it
riformiste.it
*.riformiste.it
risasdeemergencia.org
*.risasdeemergencia.org
rocketdeals.top
*.rocketdeals.top
*.sk.rocketdeals.top
*.th.rocketdeals.top
serox.xyz
*.serox.xyz
*.t3-website1.serox.xyz
*.webshop.serox.xyz
*.mail.sinergiaanimal.store
sinergiaanimal.store
*.sinergiaanimal.store
*.beta.tekpluze.com
*.dev.tekpluze.com
tekpluze.com
*.tekpluze.com
*.dash.toddzimmer.com
toddzimmer.com
*.toddzimmer.com
*.hostmaster.uninstaller.it
uninstaller.it
*.uninstaller.it
*.sitemaps.valuablenfts.com
valuablenfts.com
*.valuablenfts.com
*.www.valuablenfts.com
*.ns2.wingnet21.com
*.secure.wingnet21.com
*.server1.wingnet21.com
*.ssl.wingnet21.com
wingnet21.com
*.wingnet21.com
*.sitemap.xn--cess97n.com
*.sitemaps.xn--cess97n.com
*.www.xn--cess97n.com
xn--cess97n.com
*.xn--cess97n.com
Other domains in certificate